doron Posted August 24, 2014 Share Posted August 24, 2014 Is "Anti theft encryption", an interpretation of this? Does this mean it is not scheduled for neither 6.0, nor 6.1 or 6.2? Thanks Quote Link to comment
jonp Posted August 25, 2014 Author Share Posted August 25, 2014 Is "Anti theft encryption", an interpretation of this? Does this mean it is not scheduled for neither 6.0, nor 6.1 or 6.2? Thanks The other forum post you reference is definitely where this came from and yes, it means it's not scheduled for 6.0, 6.1, or 6.2 yet. Doesn't mean it won't get added, it just means we have yet to figure out where it fits in its prioritization. Quote Link to comment
doron Posted August 25, 2014 Share Posted August 25, 2014 The other forum post you reference is definitely where this came from and yes, it means it's not scheduled for 6.0, 6.1, or 6.2 yet. Doesn't mean it won't get added, it just means we have yet to figure out where it fits in its prioritization. Thanks for your response! If in fact this goes down in the prioritizing process, it would really be great if you could, in the interim, provide some generic hook inside the md-then-mount process of the unRAID array start (and stop), so that a user can insert their own DM layer and probably mounting before unRAID does the standard share / user share setup. (e.g.: Do the unRAID md - then call a script, which by default just copies its input to output, passing it the md block device (/dev/md*) - then mount the block device the script returns unless already mounted - something to that effect. Similarly for array stop). This should be fairly straightforwrd to implement, and will enable the addition of an encryption layer, and perhaps other DM type ideas as well, by the user. No GUI support for now; no problem. Thoughts? Quote Link to comment
jonp Posted August 25, 2014 Author Share Posted August 25, 2014 The other forum post you reference is definitely where this came from and yes, it means it's not scheduled for 6.0, 6.1, or 6.2 yet. Doesn't mean it won't get added, it just means we have yet to figure out where it fits in its prioritization. Thanks for your response! If in fact this goes down in the prioritizing process, it would really be great if you could, in the interim, provide some generic hook inside the md-then-mount process of the unRAID array start (and stop), so that a user can insert their own DM layer and probably mounting before unRAID does the standard share / user share setup. (e.g.: Do the unRAID md - then call a script, which by default just copies its input to output, passing it the md block device (/dev/md*) - then mount the block device the script returns unless already mounted - something to that effect. Similarly for array stop). This should be fairly straightforwrd to implement, and will enable the addition of an encryption layer, and perhaps other DM type ideas as well, by the user. No GUI support for now; no problem. Thoughts? This would require Tom's input / feedback. Quote Link to comment
doron Posted August 30, 2014 Share Posted August 30, 2014 This would require Tom's input / feedback. It would be great if he could provide feedback here, yes! Quote Link to comment
doron Posted September 2, 2014 Share Posted September 2, 2014 This would require Tom's input / feedback. Perhaps an expansion of emhttp_event functionality would serve this purpose well. Quote Link to comment
doron Posted September 26, 2014 Share Posted September 26, 2014 Tom, would you be able to comment on this? Quote Link to comment
mr_cb7 Posted February 27, 2015 Share Posted February 27, 2015 encryption would be great. Quote Link to comment
NAS Posted February 27, 2015 Share Posted February 27, 2015 It is worth pointing out why this topic is named "Anti theft" and why potentially some user will want a second feature. The idea is that if someone steals your unRAID that they cant plug it in and access your data. This is not the same as keeping some agenecy or skilled attacker out. Quote Link to comment
WeeboTech Posted February 27, 2015 Share Posted February 27, 2015 This is not the same as keeping some agenecy or skilled attacker out. Yeah, those guys on TV can hack into anything! Quote Link to comment
gundamguy Posted February 27, 2015 Share Posted February 27, 2015 It is worth pointing out why this topic is named "Anti theft" and why potentially some user will want a second feature. The idea is that if someone steals your unRAID that they cant plug it in and access your data. How exctly is that accomplished, and would that remove one of the best features of unRAID, namely you can take a drive out of your unRAID array and plug it into a linux distro and get the data off should your hardware fail? I'm just having nightmares again about the day my PS3 died. You might not know this but the PS3 has a built in hard drive which is replacable by individuals. So clearly when the PS3 hardware fails you just pull out the PS3 hard drive plug it into a new PS3 and get on with your life right.... WRONG, each hard drive was individually formated with an onboard chip to only be readable by that particluar PS3... so when the hardware fails even though the hard drive is good and the data is there you can't recover it... (Good job Sony!) Anyway, I'm only mentioning this becuase this is a concern of mine, not becuase I beleive that this concern will be realized. Quote Link to comment
Brucey7 Posted February 28, 2015 Share Posted February 28, 2015 Anti theft is probably not a good description. Your unRAID box would still get stolen, only when he plugged it in would a thief not be able to access your data. He would have to be a pretty savvy thief to work out how to use an unRAID box anyway. It's far more likely he would try to play FIFA Football or Minecraft, fail miserably, and throw it away. It's probably better to stick a piece of paper with your phone number on it and offer a reward for it's return. Quote Link to comment
NAS Posted February 28, 2015 Share Posted February 28, 2015 The issue is not the guy who steals it... it is the guy he sells it to cause "he knows about computers he will give me good money". This may not even be direct, it may be after it has changed hands once or twice. Data is worth more than hardware and the days where crooks dont know this are long gone Either way there is value in not having to freak out that someone has relatively easy access to all your data. That IMO is what this feature is about. Quote Link to comment
kenmaglio Posted August 18, 2015 Share Posted August 18, 2015 Any update on this - being able to have encryption - or being able to roll our own would be great. Quote Link to comment
jonp Posted August 18, 2015 Author Share Posted August 18, 2015 Any update on this - being able to have encryption - or being able to roll our own would be great. We are in discussions about this feature, but no news just yet. Know that it is an active topic right now. Quote Link to comment
kenmaglio Posted August 18, 2015 Share Posted August 18, 2015 .... Know that it is an active topic right now. #thumbsup Quote Link to comment
TSM Posted August 18, 2015 Share Posted August 18, 2015 Any update on this - being able to have encryption - or being able to roll our own would be great. We are in discussions about this feature, but no news just yet. Know that it is an active topic right now. Great news jonp! This and the ability to have more than 1 parity drive, and I'm GOOD... Quote Link to comment
vasiliyk Posted September 8, 2015 Share Posted September 8, 2015 Super! Will be waiting patiently for it. Thank you guys! Quote Link to comment
RXWatcher Posted October 7, 2015 Share Posted October 7, 2015 I would appreciate an update on this as well. Quote Link to comment
ootuoyetahi Posted December 7, 2015 Share Posted December 7, 2015 Any update to this? Quote Link to comment
Dymium Posted July 18, 2016 Share Posted July 18, 2016 Curious about news on this topic, I'm currently using a QNAP (TS-563) for this with the builtin AES encryption and seperate key which I only need to load during boot. Would be nice if unRAID would get this option. The QNAP also runs VM's, but I would like to switch-over to unRaid to have more control over my hardware and scalability. Quote Link to comment
ijuarez Posted July 18, 2016 Share Posted July 18, 2016 the two threads are very informative, some of ya'll know some sh*T, however for the regular user like me who like unraid because it works on almost any hardware and I can stick any size disk to expand my storage. Its great for those who use unraid in a enterprise setting and need encryption, don't get me wrong this would be nice, but i'm thinking ahead when a 2 or 3TB disk fails and its encrypted how easy is it replace? or when the system fails and you need to move it to new MB and then something in the hardware hash or something doesn't work. The biggest fear is for me is implementing encryption and everything is working and one day boom, usb drive fails no way to recover, need a new USB key, do I now i have a group of disk that are paper weights (maybe). I am an unRaid fan but like some else already pointed it out, there's other NAS technologies that offer this already for free, and while i see the importance of this for unRaid to be able to claim that we have this technology . My own 2 cents here, why would i paid for license where i can get it for free and why choose unraid that just started offering this technology instead of XXX who has been offering it for quite sometime and it's well supported. This is just my opinion, I hope to see it this implemented at some point and I will keep reading updates, but to me personally this feels like a split in unraids. One for consumers and the other for enterprise. Nothing wrong with that tho Quote Link to comment
bubbaQ Posted July 18, 2016 Share Posted July 18, 2016 Encryption doesn't have to be implemented via the USB. It can be as simple as a password you enter when starting the array. Quote Link to comment
JonathanM Posted July 18, 2016 Share Posted July 18, 2016 Limetech already has the infrastructure to offer optional array start denial. The V6 beta already requires connection to the mothership to verify key eligibility before the array will start, so if there was a market for it, I'm sure they would be willing to implement an optional feature that would use the same system to blacklist stolen keys. They say the phone home will be removed in the released version, and I have no reason to doubt that, but it's possible they could turn it into a marketable feature. It shouldn't be too hard to leave the "feature" enabled by request for specific license keys. At least that way a thief wouldn't have a ready to use box. It's not in any way a substitution for encryption, but I can see a business use case. Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.